Secur Solutions Group | Security Engineer

We’re on a mission to make financial services accessible and effortless for SMEs. As one of Singapore’s latest digital wholesale banks fully regulated by MAS, we’re committed to continuous innovation to bring about simpler, safer and more rewarding financial services. #bringingaboutwhatsnext We are looking for a highly motivated Bank Security Engineer who will report directly to the Chief Information Security Officer (CISO). The ideal candidate will possess advanced proficiency in firewall and Web Application Firewall (WAF), Mobile Device Management (MDM), cloud desktop security, bastion host configuration, as well as Identity and Access Management (IAM) and Key Management Service (KMS) administration. In this pivotal role, you will collaborate closely with our Security Engineer Lead to design, deploy, and sustain the bank's security infrastructure. Your primary objective will be to fortify our defenses against cyber threats while ensuring adherence to regulatory mandates. Job Description: Manage the end-to-end lifecycle of security solutions with Infra team. Implement and oversee the configuration of firewall and Web Application Firewall (WAF) systems to safeguard the bank's applications against external threats and malicious attacks. Collaborate closely with the infrastructure team to facilitate the monthly rollout of security patches across all cloud instances and data centre security systems. Administer Mobile Device Management (MDM) solutions to ensure secure access and management of mobile devices used by bank employees. Oversee the formulation and maintenance of cloud desktop security policies, including the coordination with the infrastructure team to apply security patches. This ensures the secure access to banking applications and data. Configure and manage bastion hosts to provide secure remote access to internal banking systems for authorized users, including employees and third-party partners. Administer Identity and Access Management (IAM) systems to control user access and permissions across the bank's internal applications and databases. Oversee Key Management Systems (KMS) and Hardware Security Modules (HSM) to facilitate the lifecycle management of digital certificates and cryptographic keys, including generation, distribution, rotation, and revocation of digital certificates and cryptographic keys. Implementation of various kernel hardening techniques in accordance with industry standards. Continuously evaluate and enhance overall security posture of cloud environments and maintain a good security score. Troubleshoot and resolve device outages with technology teams, engineers and vendors. Perform the incident and problems management for security systems. Ensure security systems are implemented and operated in compliance with regulatory requirements, the established security standards and control procedures. Requirement: BS/MS in Computer Science / Cybersecurity with 5 years and above relevant experience in cyber security, with a focus on network security, endpoints security and identity access management domains Experience implementing, operating cloud-based security systems and services Experience solutioning and incorporating technical security controls align with industrial framework and regulatory requirements such as NIST CSF framework, MAS TRMG, MAS Cloud Advisory Hands-on experience deploying, operating, automating security systems Strong working knowledge of cloud computing, OS, networking (TCP/IP, DNS, proxy, etc) and its security aspects Keeps abreast with relevant vulnerabilities, response and mitigating technical controls Strong analytical skills and a problem-solver Relevant certifications in CISSP, CISA, GSEC, CEH will be an added advantage #J-18808-Ljbffr